Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201601 5.3 警告
Local 		Fabrice Bellard
Canonical		 - QEMU の megasas_lookup_frame 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-5107 2016-10-28 16:29 2016-05-25 Show GitHub Exploit DB Packet Storm
201602 5.3 警告
Local 		Fabrice Bellard
Canonical		 - QEMU の hw/scsi/megasas.c の megasas_dcmd_set_properties 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-5106 2016-10-28 16:28 2016-05-25 Show GitHub Exploit DB Packet Storm
201603 4.1 警告
Local 		Fabrice Bellard
Canonical		 - QEMU の hw/scsi/megasas.c の megasas_dcmd_cfg_read 関数におけるホストメモリを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2016-5105 2016-10-28 16:28 2016-05-25 Show GitHub Exploit DB Packet Storm
201604 5.3 警告
Local 		Fabrice Bellard
Canonical		 - QEMU におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-4952 2016-10-28 16:28 2016-05-23 Show GitHub Exploit DB Packet Storm
201605 5.5 警告
Local 		Fabrice Bellard
Canonical		 - QEMU の hw/scsi/esp.c の get_cmd 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-5238 2016-10-28 16:27 2016-05-31 Show GitHub Exploit DB Packet Storm
201606 5.5 警告
Local 		Fabrice Bellard
Canonical		 - QEMU の hw/scsi/megasas.c の megasas_ctrl_get_info 関数における重要なホストメモリ情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-5337 2016-10-28 16:27 2016-06-7 Show GitHub Exploit DB Packet Storm
201607 7.8 重要
Local 		Fabrice Bellard
Canonical		 - QEMU の hw/scsi/esp.c の esp_reg_read および esp_reg_write 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-5338 2016-10-28 16:27 2016-06-6 Show GitHub Exploit DB Packet Storm
201608 7.8 重要
Local 		Fabrice Bellard
Canonical
オラクル		 - QEMU の block/iscsi.c の iscsi_aio_ioctl 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-5126 2016-10-28 16:26 2016-05-24 Show GitHub Exploit DB Packet Storm
201609 6 警告
Local 		Fabrice Bellard
Canonical		 - QEMU の hw/display/vmware_vga.c の vmsvga_fifo_read_raw 関数における重要なホストメモリ情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2016-4454 2016-10-28 16:26 2016-05-30 Show GitHub Exploit DB Packet Storm
201610 4.4 警告
Local 		Fabrice Bellard
Canonical		 - QEMU の hw/display/vmware_vga.c の vmsvga_fifo_run 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-4453 2016-10-28 16:25 2016-05-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291081 7.8 HIGH
Local 		xnview xnview xnview.exe in XnView before 2.13 does not properly handle RLE strip lengths during processing of RGB files, which allows remote attackers to execute arbitrary code via the RLE strip size field in a R… CWE-787
 Out-of-bounds Write 		CVE-2013-3939 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291082 7.8 HIGH
Local 		xnview xnview Heap-based buffer overflow in xnview.exe in XnView before 2.13 allows remote attackers to execute arbitrary code via the biBitCount field in a BMP file. CWE-787
 Out-of-bounds Write 		CVE-2013-3937 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291083 8.8 HIGH
Network 		jomres jomres SQL injection vulnerability in the Jomres (com_jomres) component before 7.3.1 for Joomla! allows remote authenticated users with the "Business Manager" permission to execute arbitrary SQL commands vi… CWE-89
SQL Injection 		CVE-2013-3932 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291084 5.4 MEDIUM
Network 		jomres jomres Cross-site scripting (XSS) vulnerability in the Jomres (com_jomres) component before 7.3.1 for Joomla! allows remote authenticated users with the "Business Manager" permission to inject arbitrary web… CWE-79
Cross-site Scripting 		CVE-2013-3931 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291085 7.8 HIGH
Local 		extensis mrsid Heap-based buffer overflow in the MrSID plugin (MrSID.dll) before 4.37 for IrfanView allows remote attackers to execute arbitrary code via a levels header. CWE-787
 Out-of-bounds Write 		CVE-2013-3946 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291086 7.8 HIGH
Local 		extensis mrsid The MrSID plugin (MrSID.dll) before 4.37 for IrfanView allows remote attackers to execute arbitrary code via a nband tag. CWE-20
 Improper Input Validation  		CVE-2013-3945 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291087 7.8 HIGH
Local 		extensis mrsid Stack-based buffer overflow in the MrSID plugin (MrSID.dll) before 4.37 for IrfanView allows remote attackers to execute arbitrary code via an IMAGE tag. CWE-787
 Out-of-bounds Write 		CVE-2013-3944 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291088 7.5 HIGH
Network 		supermicro
citrix 		smt_x9_firmware
smt_x8_firmware
netscaler_sdx_firmware
netscaler_firmware
netscaler_sd-wan_firmware 		Hardcoded WSMan credentials in Intelligent Platform Management Interface (IPMI) with firmware for Supermicro X9 generation motherboards before 3.15 (SMT_X9_315) and firmware for Supermicro X8 generat… CWE-522
 Insufficiently Protected Credentials 		CVE-2013-3620 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291089 6.1 MEDIUM
Network 		opsview opsview
opsview_core 		Multiple cross-site scripting (XSS) vulnerabilities in Opsview before 4.4.1 and Opsview Core before 20130522 allow remote attackers to inject arbitrary web script or HTML. CWE-79
Cross-site Scripting 		CVE-2013-3936 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm
291090 8.8 HIGH
Network 		opsview opsview
opsview_core 		Cross-site request forgery (CSRF) vulnerability in Opsview before 4.4.1 and Opsview Core before 20130522 allows remote attackers to hijack the authentication of administrators for requests that chang… CWE-352
 Origin Validation Error 		CVE-2013-3935 2024-11-21 10:54 2020-01-3 Show GitHub Exploit DB Packet Storm